+ ==============================
+ Release Notes for Samba 3.0.37
+ October, 1 2009
+ ==============================
+
+
+This is a security release in order to address CVE-2009-2813, CVE-2009-2948
+and CVE-2009-2906.
+Please note that Samba 3.0 is not maintained any longer. This security
+release is shipped on a voluntary basis.
+
+ o CVE-2009-2813:
+ In all versions of Samba later than 3.0.11, connecting to the home
+ share of a user will use the root of the filesystem
+ as the home directory if this user is misconfigured to have
+ an empty home directory in /etc/passwd.
+
+ o CVE-2009-2948:
+ If mount.cifs is installed as a setuid program, a user can pass it a
+ credential or password path to which he or she does not have access and
+ then use the --verbose option to view the first line of that file.
+
+ o CVE-2009-2906:
+ Specially crafted SMB requests on authenticated SMB connections can
+ send smbd into a 100% CPU loop, causing a DoS on the Samba server.
+
+
+######################################################################
+Changes
+#######
+
+Changes since 3.0.36
+--------------------
+
+
+o Jeremy Allison <jra@samba.org>
+ * BUG 6763: Fix for CVE-2009-2813.
+ * BUG 6768: Fix for CVE-2009-2906.
+
+
+o Jeff Layton <jlayton@redhat.com>
+ * Fix for CVE-2009-2948.
+
+
+######################################################################
+Reporting bugs & Development Discussion
+#######################################
+
+As 3.0 bugs will not be fixed any longer, it does not make sense to
+create bug reports for this version. If there are any issues, please
+retry with the latest Samba version and file a bug report for that
+version if the issue still exists.
+
+======================================================================
+== Our Code, Our Bugs, Our Responsibility.
+== The Samba Team
+======================================================================
+
+
+Release notes for older releases follow:
+-------------------------------------------------
+
+ ==============================
+ Release Notes for Samba 3.0.36
+ August, 5 2009
+ ==============================
+
+
+This is the latest bugfix release of the Samba 3.0 series.
+
+Please note, that the 3.0 series will be DISCONTINUED after this release!
+There will be neither any bugfix release nor any security release. Updating
+to the latest release series is strongly recommended. For more information
+on current Samba releases, please see
+
+http://wiki.samba.org/index.php/Samba3_Release_Planning
+
+
+Major enhancements included in Samba 3.0.36 are:
+
+ o Fix Winbind crash on 'getent group' (bug #5906).
+ o Excel save operation corrupts file ACLs (bug #4308).
+ o Prevent segmentation fault on joining a very long domain name.
+
+
+######################################################################
+Changes
+#######
+
+Changes since 3.0.35
+--------------------
+
+
+o Michael Adam <obnox@samba.org>
+ * BUG 5906: Fix Winbind crash on 'getent group'.
+ * BUG 6066: netinet/ip.h present but cannot be compiled on Solaris.
+
+
+o Jeremy Allison <jra@samba.org>
+ * BUG 4308: Excel save operation corrupts file ACLs.
+ * BUG 6099: In order to allow Win7 to connect to a Samba NT style
+ * BUG 6279: Fix Winbind crash.
+ PDC we set the flags before we know if it's an error or not.
+ * Fix logic error in try_chown.
+ * Correctly use chroot().
+ * Fix bug in processing of open modes in POSIX open.
+
+
+o Günther Deschner <gd@samba.org>
+ * Don't install the cifs.upcall binary twice.
+
+
+o Steve French <smfrench@gmail.com>
+ * BUG 4640: Fix guest mounts in mount-cifs.
+ * Fix mount.cifs handling of -V option.
+
+
+o Bhaskar Jain (bhajain) <bhajain@cisco.com>
+ * Prevent segmentation fault on joining a very long domain name.
+
+
+o Günter Kukkukk <linux@kukkukk.com>
+ * Don't try and delete a default ACL from a file.
+
+
+o Volker Lendecke <vl@samba.org>
+ * Add workaround for MS KB932762.
+
+
+o Shirish Pargaonkar <shirishpargaonkar@gmail.com>
+ * BUG 4370: Clean-up entries in /etc/mtab after unmount.
+ * Add fakemount (-f) and nomtab (-n) flags to mount.cifs.
+
+
+o Ted Percival <ted.percival@quest.com>
+ * Fix a crash during name resolution when log level >= 10
+ and libc segfaults if printf is passed NULL for a "%s" arg
+ (eg. Solaris).
+
+
+o Miguel Suarez <Miguel.Suarez@stratus.com>
+ * BUG 6085: Fix build of vfs_default.
+
+
+o Yasuma Takeda <yasuma@osstech.co.jp>
+ * BUG 6098: When the DNS server is invalid, the ads_find_dc() does not work
+ correctly.
+
+
+######################################################################
+Reporting bugs & Development Discussion
+#######################################
+
+As 3.0 bugs will not be fixed any longer, it does not make sense to
+create bug reports for this version. If there are any issues, please
+retry with the latest Samba version and file a bug report for that
+version if the issue still exists.
+
+======================================================================
+== Our Code, Our Bugs, Our Responsibility.
+== The Samba Team
+======================================================================
+
+
+----------------------------------------------------------------------
+
+
+ ==============================
+ Release Notes for Samba 3.0.35
+ June, 23 2009
+ ==============================
+
+
+This is a security release in order to address CVE-2009-1888.
+
+ o CVE-2009-1888:
+ In Samba 3.0.31 to 3.3.5 (inclusive), an uninitialized read of a
+ data value can potentially affect access control when "dos filemode"
+ is set to "yes".
+
+
+######################################################################
+Changes
+#######
+
+Changes since 3.0.34
+--------------------
+
+
+o Jeremy Allison <jra@samba.org>
+ * Fix for CVE-2009-1888.
+
+
+######################################################################
+Reporting bugs & Development Discussion
+#######################################
+
+Please discuss this release on the samba-technical mailing list or by
+joining the #samba-technical IRC channel on irc.freenode.net.
+
+If you do report problems then please try to send high quality
+feedback. If you don't provide vital information to help us track down
+the problem then you will probably be ignored. All bug reports should
+be filed under the Samba 3.0 product in the project's Bugzilla
+database (https://bugzilla.samba.org/).
+
+
+======================================================================
+== Our Code, Our Bugs, Our Responsibility.
+== The Samba Team
+======================================================================
+
+----------------------------------------------------------------------
+
==============================
Release Notes for Samba 3.0.34
January, 20 2009
* BUG 5937: Fix filenames with "*" char hiding other files.
* BUG 6019: File corruption in Clustered SMB/NFS environment
managed via CTDB.
+ * BUG 6035: Fix possible race between fcntl F_SETLKW and alarm delivery.
* Remove unecessary msync.
* Rename cifs.spnego to cifs.upcall.
* Fix segfault when execution cifs.upcall without any arguments.
======================================================================
-Release notes for older releases follow:
- --------------------------------------------------
+
+
==============================
Release Notes for Samba 3.0.33
November, 27 2008